bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-14 04:52:59 +02:00

Author	SHA1	Message	Date
Matthias Fischer	80d5bb76dd	iproute2: Update to 5.3.0 For details see: https://git.kernel.org/pub/scm/network/iproute2/iproute2.git/log/?h=v5.3.0 Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:37:03 +00:00
Arne Fitzenreiter	563ac9b13e	core137: ship knot Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:36:24 +00:00
Matthias Fischer	5725768496	knot: Update to 2.8.4 For details see: https://www.knot-dns.cz/2019-09-24-version-284.html Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:35:16 +00:00
peter.mueller@ipfire.org	b9921169b1	mtr: update to 0.93 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:33:55 +00:00
peter.mueller@ipfire.org	65c295e923	Tor: update to 0.4.1.6 Please refer to https://blog.torproject.org/new-release-tor-0416 for release notes. This patch has to be applied after applying `9fb607ef6` (https://patchwork.ipfire.org/patch/2407/), which was not merged at the time of writing. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:31:31 +00:00
peter.mueller@ipfire.org	a85a7a60fc	firewall: raise log rate limit for user generated rules, too Having raised the overall log rate limit to 10 packet per second in Core Update 136, this did not affected rules generated by the user. In order to stay consistent, this patch also raises log rate limit for these. In order to avoid side effects on firewalls with slow disks, it was probably better touch these categories separately, so testing users won't be DoSsed instantly. :-) Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:30:31 +00:00
Arne Fitzenreiter	e60dde5f53	core137: ship Net_SSLeay Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:26:22 +00:00
Erik Kapfer	24f9c830eb	Net-SSLeay: Update to version 1.88 Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:24:32 +00:00
Matthias Fischer	3ec5d6c062	nano: Update to 4.4 Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:22:27 +00:00
Arne Fitzenreiter	0e081a25f7	core137: ship libssh Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:21:17 +00:00
Michael Tremer	95180fe563	bird: Update to 2.0.6 Minor update which will enable support for RPKI because libssh is now present. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:19:35 +00:00
Michael Tremer	1df47cc9ee	libssh: New package This is required by Bird to support RPKI. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:19:33 +00:00
Arne Fitzenreiter	dcf1a61f5b	core137: ship updated logrotate.conf Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:17:44 +00:00
Matthias Fischer	686ada3158	Added Mail log file to '/etc/logrotate.conf' Fixes Bug #12155: logrotate wasn't set up to rotate this file. For details see: https://bugzilla.ipfire.org/show_bug.cgi?id=12155 Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:17:06 +00:00
Arne Fitzenreiter	dbcb1c99d2	core137: ship tzdata Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:14:43 +00:00
Matthias Fischer	71adb8b98f	tzcode / tzdata: Update to 2019c Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:13:22 +00:00
Arne Fitzenreiter	c9ef22a019	core137: ship wpa_supplicant Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:10:23 +00:00
Matthias Fischer	2fc8d41915	hostapd: Update to 2.9 For details see: https://w1.fi/cgit/hostap/plain/hostapd/ChangeLog Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:09:10 +00:00
Matthias Fischer	19addaa5aa	wpa_supplicant: Update to 2.9 For details see: https://w1.fi/cgit/hostap/plain/wpa_supplicant/ChangeLog Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:09:08 +00:00
Arne Fitzenreiter	6499bd0d50	core137: ship bind Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:08:04 +00:00
Matthias Fischer	5121f35be3	bind: Update to 9.11.11 For details see: https://downloads.isc.org/isc/bind9/9.11.11/RELEASE-NOTES-bind-9.11.11.html "Security Fixes A race condition could trigger an assertion failure when a large number of incoming packets were being rejected. This flaw is disclosed in CVE-2019-6471. [GL #942] ... Bug Fixes Glue address records were not being returned in responses to root priming queries; this has been corrected. [GL #1092] Interaction between DNS64 and RPZ No Data rule (CNAME *.) could cause unexpected results; this has been fixed. [GL #1106] named-checkconf now checks DNS64 prefixes to ensure bits 64-71 are zero. [GL #1159] named-checkconf could crash during configuration if configured to use "geoip continent" ACLs with legacy GeoIP. [GL #1163] named-checkconf now correctly reports missing dnstap-output option when dnstap is set. [GL #1136] Handle ETIMEDOUT error on connect() with a non-blocking socket. [GL #1133]" Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:06:58 +00:00
Arne Fitzenreiter	2a0edc08bf	core137: ship changed ovpnmain.cgi Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:06:13 +00:00
Erik Kapfer	b21a6319cd	ovpn: Add ta.key check to main settings Since Core 132 the 'TLS Channel Protection' is part of the global settings, the ta.key generation check should also be in the main section otherwise it won´t be created if not present. Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:04:52 +00:00
Erik Kapfer	ae04d0a311	ovpn: Generate ta.key before dh-parameter Fixes: #11964 and #12157 If slow boards or/and boards with low entropy needs too long to generate the DH-parameter, ovpnmain.cgi can get into a "Script timed out before returning headers" and no further OpenSSl commands will be executed after dhparam is finished. Since the ta.key are created after the DH-parameter, it won´t be produced in that case. To prevent this, the DH-parameter will now be generated at the end. Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:04:50 +00:00
peter.mueller@ipfire.org	a4ec2a4e4f	Tor: update to 0.4.1.5 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:03:26 +00:00
Arne Fitzenreiter	5907bc5d5e	core137: add pcre Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:02:23 +00:00
Matthias Fischer	57354c8187	pcre: Update to 8.43 For details see: http://www.pcre.org/original/changelog.txt Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 18:01:13 +00:00
Arne Fitzenreiter	c0fe5525ce	core137: add dhcpcd Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:59:39 +00:00
Matthias Fischer	a4bb11243f	dhcpcd: Update to 8.0.6 For details see: https://roy.marples.name/blog/dhcpcd-8-0-6-released "inet6: Fix default route not being installed DHCP: If root fs is network mounted, enable last lease extend man: Fix lint errors. BSD: avoid RTF_WASCLONED routes DHCP: Give a better message when packet validation fails DHCP: Ensure we have enough data to checksum IP and UDP The last change fixes a potential DoS attack introduced in dhcpcd-8.0.3 when the checksuming code was changed to accomodate variable length IP headers. The commit says since 7.2.0, but I've now decided that's not the case." Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:58:35 +00:00
Arne Fitzenreiter	6c84c53803	core137: add iproute2 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:57:32 +00:00
Matthias Fischer	5551237b1a	iproute2: Update to 5.2.0 For details see: https://git.kernel.org/pub/scm/network/iproute2/iproute2.git/log/ Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:56:02 +00:00
Arne Fitzenreiter	6bc008fc8f	core137: add iptables and collectd collectd is linked to libip4tc so we need to ship this also Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:53:36 +00:00
Matthias Fischer	7a03d4b08a	iptables: Update to 1.8.3 For details see: https://www.netfilter.org/projects/iptables/files/changes-iptables-1.8.3.txt Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:51:19 +00:00
Arne Fitzenreiter	4e6c66b525	core137: add libnetfilter_queue Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:49:09 +00:00
Stefan Schantl	deb594c1b6	libnetfilter_queue: Update to 1.0.4 Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:47:26 +00:00
Arne Fitzenreiter	968af91f62	core137: add libhtp Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:46:29 +00:00
Stefan Schantl	db946ccc1c	libhtp: Update to 0.5.30 Fixes #12170 Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Reviewed-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-08 17:44:45 +00:00
Arne Fitzenreiter	73659e8cf9	kernel: update to 4.14.148 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-07 23:37:56 +02:00
Arne Fitzenreiter	a75eebc86a	kernel: update to 4.14.147 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-10-05 14:42:09 +02:00
Arne Fitzenreiter	69cf4f3065	kernel: update to 4.14.146 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-21 20:44:52 +02:00
Stefan Schantl	415969cc1b	kernel: Backport patch to fix a netfilter contrack related issue. This fixes the packet drop issue when using suricata on IPFire. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-21 09:53:56 +00:00
Arne Fitzenreiter	593a9326d8	start core137 and add kernel and IO-Socket-SSL to updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-21 09:52:02 +00:00
Arne Fitzenreiter	92fbca3417	make.sh: fix tmpfs build on 32bit machines the inode count of tmpfs defaults on availbable low memory page count which is too low on 32bit machines Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-18 16:31:26 +00:00
Arne Fitzenreiter	6ef219bbe0	glibc: enbable parallel build for locales Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-18 16:30:49 +00:00
Erik Kapfer	639ce4545d	IO-Socket-SSL: Update to version 2.066 Fix for "Undefined subroutine &IO::Socket::SSL::set_client_defaults called at /usr/libexec/git-core/git-send-email" problem. Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-18 16:24:22 +00:00
Arne Fitzenreiter	d952d6d735	core136: apply local sshd config and restart sshd at update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-14 18:13:21 +00:00
Arne Fitzenreiter	4f84bf4074	core136: fix typo at GeoIP update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-14 16:20:27 +00:00
Arne Fitzenreiter	9ab4e56aa9	core136: ship perl-CGI and perl-Switch Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-14 15:21:41 +00:00
Arne Fitzenreiter	f7eb5925d2	core136: ship updated perl scripts Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-09-14 15:18:29 +00:00
Arne Fitzenreiter	2f42237487	Merge branch 'next'	2019-09-12 12:57:09 +02:00

1 2 3 4 5 ...

13754 Commits